Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
File: HpPX4oqwueeUSHlGoProzW7VQHE.mft (raw, json)
Hash identifier: cO9rqJ3fpDHnBt86KjLhfq1Mup5/fKgHokfGzAmIBAo=
Subject key identifier: 9B:70:76:AE:53:6A:55:62:60:8B:D7:64:8D:B3:49:D4:AB:99:AF:23
Authority key identifier: 1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71
Certificate issuer: /CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071
Certificate serial: 019E40C1AA9B36FB9C8B10FC33787B1DCC19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
Manifest number: 02B2
Signing time: Tue 19 May 2026 15:01:34 +0000
Manifest this update: Tue 19 May 2026 15:01:34 +0000
Manifest next update: Wed 20 May 2026 15:01:34 +0000
Files and hashes: 1: HpPX4oqwueeUSHlGoProzW7VQHE.crl (hash: 0HWneCoYSfl5per5CBP//q0/jIW+e+0/9OvnSDSU18E=)
2: ZvpkHDHin9hopFucWLYTL8yzbzs.roa (hash: kDSqC5wVuK3UIDaQObaNelkz/juujqc2r2FmfE7Rrx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 May 2026 13:48:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:c1:aa:9b:36:fb:9c:8b:10:fc:33:78:7b:1d:cc:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071
Validity
Not Before: May 19 15:01:34 2026 GMT
Not After : May 20 15:01:34 2026 GMT
Subject: CN=9b7076ae536a5562608bd7648db349d4ab99af23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c2:bf:3c:4e:24:c7:89:18:81:6b:77:11:40:
5c:13:6c:a4:06:49:e2:56:3e:b6:30:f0:b0:45:ff:
f3:46:b5:da:28:0b:b9:3e:c5:2a:de:bc:cc:0a:60:
64:a2:39:4c:18:8f:ba:6b:e1:5e:ec:20:a4:ae:33:
91:e3:f8:af:68:ae:7d:bc:e3:ee:eb:20:f7:11:17:
44:23:e6:7c:d4:9d:4b:6e:e6:ee:ef:e7:25:81:06:
53:d2:af:d7:ab:e2:5a:22:10:51:74:ec:d8:fc:5f:
ec:c4:4e:8c:11:e5:18:9a:40:70:02:75:34:0f:d7:
16:f4:bf:42:de:e2:00:99:6c:18:42:31:20:b5:38:
1e:f6:cb:71:75:69:0c:56:1f:a6:fc:59:45:27:4b:
97:cf:5d:24:e8:0b:76:8e:d4:32:e3:ee:40:6c:29:
02:8d:ca:86:c1:51:71:86:c1:2d:45:86:c3:5a:44:
20:bb:59:e7:41:1d:f5:a4:9b:a2:8a:3f:65:47:6d:
2e:0e:52:80:77:19:fb:d5:a9:92:79:38:2c:da:f6:
e2:9c:ed:cb:2e:3c:37:ea:5c:8a:78:d8:99:01:8e:
62:ad:8b:b7:4c:62:05:60:5f:d6:99:dd:e8:94:02:
f4:e4:2c:31:d6:9a:cd:7a:5a:dd:0b:48:9a:69:42:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:70:76:AE:53:6A:55:62:60:8B:D7:64:8D:B3:49:D4:AB:99:AF:23
X509v3 Authority Key Identifier:
keyid:1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:96:44:e7:b9:f3:fc:b0:37:9c:56:78:38:3c:76:14:2e:7c:
c2:05:8f:e4:38:45:42:38:e3:ce:a9:26:d1:f5:ac:68:5f:2d:
51:91:4b:c1:f8:c6:19:04:87:3f:51:8e:d9:fd:26:c3:d0:9f:
d3:11:a3:26:80:e6:0e:f8:d4:a8:1d:60:f1:9a:f1:24:c5:62:
65:04:97:42:1e:66:9d:20:22:f9:1e:6e:47:60:71:41:aa:c4:
11:de:0b:3a:d0:17:58:b5:d8:57:61:31:62:20:b6:8d:bc:1c:
ea:85:90:20:7e:5b:3d:1a:a8:4a:23:98:19:29:b7:29:4a:ad:
a3:9d:cf:9e:8b:40:f1:85:5c:c9:48:dd:0c:71:8a:d5:f4:21:
e4:01:be:9a:3c:d3:9b:3c:44:4d:6d:7f:76:e1:58:5a:dc:9c:
3a:6a:b7:c4:d0:f7:66:a9:26:6b:73:4b:ec:89:db:24:8e:bd:
ae:0b:38:d1:63:56:93:87:20:1d:ea:17:26:97:96:53:b2:c0:
4b:12:dc:95:3a:98:d0:3c:ef:58:f4:1c:ef:0c:f5:b2:b3:56:
f7:45:2d:9c:51:87:d4:8e:bc:59:aa:27:9e:4c:9b:d9:15:f8:
20:eb:20:76:17:8a:9e:85:31:89:b1:c7:c4:b3:2a:5c:ff:8c:
80:88:5d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 19 19:58:13 2026 by rpki-client